Sun Nov 14 15:47:18+0100 2021
04c6c0e
Switch DNS master to hermes, from ene
modules/config/dns.scm
| 43 | 43 | ||
| 44 | 44 | (define-zone-entries lepiller.eu.zone | |
| 45 | 45 | ;; Name TTL Class Type Data | |
| 46 | - | ("ene" "" "IN" "A" ene-ip4) | |
| 46 | + | ("ene" "" "IN" "A" ene-kb-ip4) | |
| 47 | + | ("ene" "" "IN" "AAAA" ene-kb-ip6) | |
| 47 | 48 | ("hermes" "" "IN" "A" hermes-ip4) | |
| 48 | 49 | ("hermes" "" "IN" "AAAA" hermes-ip6) | |
| 49 | 50 | ("xana" "" "IN" "A" xana-ip4) | |
… | |||
| 63 | 64 | ("@" "" "IN" "NS" "ns2") | |
| 64 | 65 | ("ns" "" "IN" "A" hermes-ip4) | |
| 65 | 66 | ("ns" "" "IN" "AAAA" hermes-ip6) | |
| 66 | - | ("ns2" "" "IN" "A" ene-ip4) | |
| 67 | + | ("ns2" "" "IN" "A" ene-kb-ip4) | |
| 68 | + | ("ns2" "" "IN" "AAAA" ene-kb-ip6) | |
| 67 | 69 | ||
| 68 | 70 | ("@" "" "IN" "MX" "10 courriel") | |
| 69 | 71 | ("@" "" "IN" "MX" "50 b.courriel") | |
… | |||
| 71 | 73 | ("@" "" "IN" "MX" "60 5g33mrv2rp2onyvte2b3ge5a44fxansxwt4sajmmae7lgorxjgz5czad.onion.") | |
| 72 | 74 | ("b.courriel" "" "IN" "A" hermes-ip4) | |
| 73 | 75 | ("b.courriel" "" "IN" "AAAA" hermes-ip6) | |
| 74 | - | ("courriel" "" "IN" "A" ene-ip4) | |
| 76 | + | ("courriel" "" "IN" "A" ene-kb-ip4) | |
| 77 | + | ("courriel" "" "IN" "AAAA" ene-kb-ip6) | |
| 75 | 78 | ("imap" "" "IN" "CNAME" "courriel") | |
| 76 | 79 | ("smtp" "" "IN" "CNAME" "b.courriel") | |
| 77 | 80 | ("@" "" "IN" "TXT" "\"v=spf1 mx a ~all\"") | |
… | |||
| 93 | 96 | (define ene | |
| 94 | 97 | (knot-remote-configuration | |
| 95 | 98 | (id "ene") | |
| 96 | - | (address (list ene-ip4)) | |
| 99 | + | (address (list ene-kb-ip4 ene-kb-ip6)) | |
| 97 | 100 | (key "lepiller-key"))) | |
| 98 | 101 | ||
| 99 | 102 | (define hermes | |
… | |||
| 112 | 115 | (define slave-acl | |
| 113 | 116 | (knot-acl-configuration | |
| 114 | 117 | (id "slave-acl") | |
| 115 | - | (address (list ene-ip4)) | |
| 118 | + | (address (list ene-kb-ip4 ene-kb-ip6)) | |
| 116 | 119 | (key '("lepiller-key")) | |
| 117 | 120 | (action '(notify)))) | |
| 118 | 121 | ||
| 119 | 122 | (define lepiller-master-zone | |
| 120 | 123 | (knot-zone-configuration | |
| 121 | 124 | (domain "lepiller.eu") | |
| 122 | - | (notify '("hermes")) | |
| 125 | + | (notify '("ene")) | |
| 123 | 126 | (dnssec-policy "default") | |
| 124 | 127 | (acl '("master-acl")) | |
| 125 | 128 | (zonefile-load 'difference) | |
| 126 | 129 | (zone (zone-file | |
| 127 | 130 | (origin "lepiller.eu") | |
| 128 | 131 | (entries lepiller.eu.zone) | |
| 129 | - | (serial 2020101201))))) | |
| 132 | + | (serial 2021111401))))) | |
| 130 | 133 | ||
| 131 | 134 | (define lepiller-slave-zone | |
| 132 | 135 | (knot-zone-configuration | |
| 133 | 136 | (domain "lepiller.eu") | |
| 134 | 137 | (acl '("slave-acl")) | |
| 135 | - | (master '("ene")))) | |
| 138 | + | (master '("hermes")))) | |
| 136 | 139 | ||
| 137 | 140 | (define ipv6-reverse-master-zone | |
| 138 | 141 | (let* ((ip6 (string->list (substring (string-delete #\: hermes-ip6) 0 12))) | |
modules/config/mail.scm
| 36 | 36 | ||
| 37 | 37 | (define relays-file | |
| 38 | 38 | (plain-file "other-relays" | |
| 39 | - | (string-append ene-ip4 "\n" hermes-ip4 "\n" hermes-ip6 "\n" ))) | |
| 39 | + | (string-append ene-rennes-ip4 "\n" ene-kb-ip4 "\n" ene-kb-ip6 "\n" | |
| 40 | + | hermes-ip4 "\n" hermes-ip6 "\n" ))) | |
| 40 | 41 | ||
| 41 | 42 | (define blacklist-file | |
| 42 | 43 | (plain-file "blacklist" " |
modules/data/dns.scm
| 20 | 20 | ;; | |
| 21 | 21 | ||
| 22 | 22 | (define-module (data dns) | |
| 23 | - | #:export (ene-ip4 ene-ip6 | |
| 23 | + | #:export (ene-rennes-ip4 ene-kb-ip4 ene-kb-ip6 | |
| 24 | 24 | hermes-ip4 hermes-ip6 | |
| 25 | 25 | xana-ip4)) | |
| 26 | 26 | ||
| 27 | 27 | (define hermes-ip4 "89.234.186.109") | |
| 28 | 28 | (define hermes-ip6 "2a00:5884:8208::1") | |
| 29 | 29 | ||
| 30 | - | (define ene-ip4 "79.91.200.80") | |
| 30 | + | (define ene-rennes-ip4 "79.91.200.80") | |
| 31 | + | (define ene-kb-ip4 "86.247.139.155") | |
| 32 | + | (define ene-kb-ip6 "2a01:cb04:717:4400:cf:5ff:fe81:68af") | |
| 31 | 33 | ||
| 32 | 34 | (define xana-ip4 "62.210.81.154") |
systems/hermes.scm
| 87 | 87 | (service knot-service-type | |
| 88 | 88 | (knot-configuration | |
| 89 | 89 | (includes '("/etc/knot/secrets.conf")) | |
| 90 | - | (acls (list slave-acl)) | |
| 90 | + | (acls (list master-acl)) | |
| 91 | 91 | (remotes (list ene)) | |
| 92 | - | (zones (list lepiller-slave-zone | |
| 92 | + | (zones (list lepiller-master-zone | |
| 93 | 93 | ipv4-reverse-master-zone | |
| 94 | 94 | ipv6-reverse-master-zone)))) | |
| 95 | 95 | (certbot-service `(("lepiller.eu" "www.lepiller.eu" "smtp.lepiller.eu"))) |